PANews February 11 News, according to Decrypt, Google’s security team Mandiant recently released a report warning that North Korea-linked hacker groups are using AI-generated deepfake videos and fake Zoom meetings to carry out more targeted cyberattacks on cryptocurrency and fintech companies.
The report states that the hacker group known as UNC1069 (or CryptoCore) recently infiltrated a fintech company by initiating a fake Zoom meeting through a hijacked Telegram account and used a deepfake video of a well-known cryptocurrency executive to gain trust during the meeting. The attackers, citing “audio issues,” tricked victims into running malicious commands, ultimately deploying seven different families of malware within their systems to steal credentials, browser data, and session tokens. The group primarily targets businesses and individuals in the cryptocurrency industry, including software companies, venture capital firms, and their employees.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
Bitcoin Depot Discloses $3.6M BTC Theft After Hack on Settlement Accounts
Bitcoin Depot reported a security breach where hackers stole 50.9 BTC, worth approximately $3.6 million, by compromising internal settlement account credentials. This incident highlights vulnerabilities in crypto companies' operational infrastructure, emphasizing the need for enhanced security measures.
CryptoNewsFlash1m ago
Aethir Successfully Thwarts an ATH Token Cross-Chain Bridge Attack, with User Losses Below $90k
Aethir issued a security advisory on April 10, confirming that it successfully blocked a malicious attack on the ATH token cross-chain bridge contract, with losses under $90k. All affected contracts have been disconnected, and the core circulating supply remains intact. Aethir will work with trading platforms and law enforcement agencies to support the freezing of funds and the identification and tracking of the attacker, and it will publish investigation updates and a compensation plan in its Discord community.
GateNews1h ago
Claude code leak sparks an LLM crisis, hackers have stolen researchers’ ETH
Security research reveals that in the LLM agent ecosystem, over 20% of free API routers actively inject malicious code, leading to asset theft and credential crises. In addition, the Claude code-leak incident has enabled attackers to spread malware by exploiting developers’ curiosity. The research team proposes a three-layer defense mechanism to address supply-chain security risks.
MarketWhisper1h ago
Solayer founder issues a warning: AI agent routers face malicious injection risks, and ETH is being stolen
Solayer’s founder exposes a security vulnerability in large language model (LLM) routers; in 428 routers, more than 20% exhibit malicious behavior, such as private keys being stolen. The research recommends that developers implement a separate end-to-end integrity verification mechanism on the client side and provides three defense options to mitigate supply-chain attacks.
MarketWhisper2h ago
The U.S. Department of the Treasury expands financial-grade cybersecurity intelligence to the crypto industry, and digital asset companies are receiving, for the first time, treatment on par with traditional finance.
The U.S. Department of the Treasury’s Office of Cybersecurity and Critical Infrastructure Protection announced that it will expand free cyber threat intelligence to eligible digital asset companies—marking the first time the cryptocurrency industry has been included in the country’s national financial cybersecurity information-sharing framework. This initiative is intended to help digital asset companies respond to cyber threats more effectively and to align with relevant policy recommendations to strengthen the resilience and security of the financial system.
ChainNewsAbmedia2h ago
Solayer’s founder releases research on LLM supply chain security; more than 2% of free routers have been exposed as having been maliciously injected
Solayer’s founder reveals safety risks of large language models, pointing out that LLM agents relying on third-party API routers face a risk of being attacked by malicious code. Testing shows that multiple routers have security vulnerabilities, and can even leak sensitive credentials. In addition, research demonstrates feasible attack methods and defense measures.
GateNews2h ago
